ELAYARAJA RATHINAM
Senior Network Security Engineer
Summary
Trusted Network Security Engineer with 15 years of experience in security operations for protecting companies against bad actors who disrupt business operations. Serves as primary safeguard against external threats. Educates colleagues on best practices and network safety protocols. Protects networked assets through both preventive and reactionary measures.
SUMMARY Good hands on experience in the Network/Routing/Switches/ & Wireless products, F5-LTM / Citrix- Load Balancers, Email- Gateway and Endpoint security. Hands on experience in Security products Network Gateway: Firewalls virtualization,SD-WAN, Web Proxy (Broadcom /Cisco) & WAN Optimization, IPsec VPN, Remote client & SSL VPN, QoS (UTM, Email security, URL filter, GeoIP, AppSecure filter, IPS, NAT, PAT, APT -Antivirus, D-DoS, Sandbox, DLP) Follow up the ITIL policy, Change Management / Incident management within SLA. Daily monitoring for systems Health and network traffic analyzer tools (PRTG, MRTG, SolarWinds / OpManager) Very good knowledge and experience in Backup/ Restore for the systems and network devices. Periodical a test for security & compliance, vulnerability assessment & audit by monthly basis. Continuous Review & System security Event & Audit Logs. T
Overview
15
15
years of professional experience
6
6
years of post-secondary education
8
8
Certifications
3
3
Languages
Work History
Sr. Network Security Engineer
FTC
01.2020 - Current
- I'm responsible to ensure the Network /InfoSec Security Project Implementation and operations for Digital14 Corporate network security includes all business unit execute the plan, design, and implement for the network and security devices to analyze the complex technical problems to closely work with the team and vendor for the network & security project implementation and operations.
Sr. Network Security Engineer
Arabian Construction Company
04.2017 - 12.2019
- Daily Operations tickets handling Firewall devices for Cisco ASA /FTD(FMC) , to plan, configure the ACL Rule, Routing policy , HLD, LLD design & Project document preparation
- Cisco VPN Site to Site & Any-connect Client to Site for implement and troubleshooting the issues based on the business requirement
- Palo Alto and FortiGate On-prem / Cloud Firewall configuration, implementation and managing daily operations
- Gigamon VUE HC serious Packet visibility & Packet Analytics project design & implementation & Trouble shooting
- Imperva -WAF security solutions, Design configuration, Implementation for policy Hardening and troubleshooting
- Fire-Eye EX – FireEye-NX configuration implementation and daily operations for security incidents and evolve the remediation action plan for policy update if required
- Cisco Web security Appliance (WSA) Proxy & Bluecoat Proxy Configuration filtering policy, Project implementation and daily operations troubleshooting the issues based on the requirement
- Cisco Email Security Appliance (ESA) devices for Email security Configuration filtering policy, implementation and troubleshooting the issues based on the daily operations requirement
- Cisco Identity Security Engine (ISE), plan and configure the authentication, authorization, accounting (AAA), posture, and profiler policy create and troubleshooting for all related End user device 802.1x and End user VPN accounts
- Working for Cisco SW (Core / Edge) and Cisco ACI, Create VLAN, tenants, and configure BD, EPG VRF, Contracts, Filtering, and Routing policy configuration implementation & troubleshooting for based on daily operations business requirements
- Cisco Enterprise Wireless Enterprise setup WLAN device managing AP and SSID for configure implement and troubleshooting for all Wireless related issues
- Follow the IT process by JIRA & Confluence system, Flow to Achieve the SLA & KPI within Spark time period
- I'm responsible to ensure the IT Network & Security operations for HO and BO to execute the plan, design, implement for the network and security devices to analyze the complex technical problems to closely work with the team for the network & security operations
- Completed Projects:
- Palo Alto 3500 HA Active/Active state, Design/Configuration/Implementation
- Juniper SSG 320 HA A/S configuration and Implementation
- Avaya IP office 500 VoIP configuration /Implementation
- Avaya Enterprise DC SW configuration /Implementation
- Global Protect Client to site VPN project configuration/Implementation about 800 users
- F5 -LB configuration and Implementation for corporate service applications
- Products Hands-on Experience:
- Daily Operations for Palo Alto, Juniper ISG 2000(HA), SSG320.Fortigate SSL& IPsec VPN, DMZ, IPS & IDS, Juniper SA-4000 & Palo Alto Global Protect for Remote client site VPN.NGFW (App Filtering, Gateway Antivirus, Anti-Spam, DLP, Wildfire Analysis, Sandbox, WAF Firewall installation and configuration& troubleshooting
- PABX system AvayaG450 CM (HA) / Avaya IP office 500 for VoIP systems configuration, Implementation, troubleshooting
- Periodical Security patches update and upgrade the new firmware version on all network operational devices
- BCP plan for periodical test activity for the DR sites ensures for operational
- Network performance monitoring tools: PRTG, SolarWinds NPM, Manage Engine OpManager
- SIEM install, configure & sys Logs, NetFlow & Audit Logs and correlation
- Daily operation changes to track record Incident /Change management process.
Sr. Network Consultant
Chronus Software Pvt Ltd
Chennai
06.2013 - 04.2017
- I'm responsible for effectively planning and balancing the businesses needs for IT capability; constantly reviewing
- Processes and identifying a way to improve the efficiency of service, and pro-actively managing all areas of Technology
- Effectively plan, design and executing all IT operations and ensuring the operations services
- Ensuring all IT systems, Infrastructures setup for on-premises and Cloud server AWS, networks and security are running on efficient level
- Delegating work to the Team and supporting the internal team to improve their efficiency on a timely basis
- Tracking incident management and solution
- Completed Projects:
- FortiGate 1500 HA Active/Standby state, Design/Configuration/Implementation with Forti-manager
- Forti-Wi-Fi and AP configuration for corporate office networks for around 500 users
- Forti-Token & Forti-Client VPN configuration and Implementation for all corporate users.
Sr Network Security Technical Executive
Digital Track Solutions Pvt Ltd
Chennai
01.2011 - 05.2013
- Handling all enterprise-level security products from Gateway to end users’ edge to edge devices
- Firewall, Antivirus, Anti-Spam, IPS, IDS, DLP
- Specialization in IT Enterprises network security Products:
- Firewall Products: FortiGate, Forti-Manager, Forti-Analyzer
- Checkpoint, SonicWALL, Cyberoam Installation configuration and troubleshooting for VPN for DMVPN, GRE, S2S IPSEC, and Remote VPN
- B) Installation configuration and troubleshooting Cluster HA(High Availability) load balancing
- C) Routing configuration and troubleshooting for Static and Dynamic Route ( RIP, OSPF, BGP)
- Specialization in IT Enterprises Desktop security Products:
- Symantec Endpoint production, Mcafee ePO,) TrendMicro office scan and TrendMicro worry free,
- Specializations in Security Information Event Management :( SIEM) 1)Forti SIEM ,2) McAfee SIEM, 3)Splunk,
- Having good knowledge and experience about installation, configuration and deployment for the event correlation and report analyze for the proactive event remediation
- Specializations about Desktop DLP (Data loss prevention) Products: 1) Symantec DLP 2) Mcafee DLP
- 3) Forcepoint DLP suite DLP products have enough knowledge for installation, configuration, Implementation a solution pack , classification Policy.
System Administrator
KONGUNADU ARTS AND SCIENCE COLLEGE
Coimbatore
10.2007 - 12.2010
- Managing and maintaining for servers, Desktops, Routers, switches
- Configuring the desktops, Servers
- Specializations about OS Products Microsoft Platform:
- All Windows servers and Windows Client, Printers, Scanners,
- ADS Configuration and management with GPO
- DNS and DHCP server configuration
- Specializations about Linux Platform:
- Ubuntu, Red hat: Installation & Configuration DNS, Samba, HTTP, HTTPS,
- DHCP, FTP, SFTP SSH, TELNET servers
- User Management with LDAP utility
- File & Folder management with all ACL.
Education
Bachelor of Computer Science (B.Sc - CS
Annamalai University
01.2004 - 01.2007
Master of Computer Applications - undefined
Bharathiyar University
01.2008 - 01.2011
Skills
Enterprise Network & Security Products ExpertiseCorporate Network setup Design & Implement for Cisco Routers & Core Switches, Cisco ACI Firewalls: Cisco ASA, Cisco FTD, FortiGate - Palo Alto, Juniper (SSG/SRX), Juniper SA VPN, Forti-Analyzer, Imperva -WAF, FireEye-NX,EX,FX, F5-BIGIP(LTM), Gigamon HC2 Cisco Wireless LAN Controller & AP, AnyConnect, Global Protect, FortiClient VPNRouting: (Protocols: Rip, EIGRP, OSPF, HSRP, VRRP, VLAN, ACL, DMVPN)Switches: Plan, Design, configuration/Implementation & troubleshooting for VLANs, VPC, STP, VVRP, HSRP, Ether channel and ACLsDesktop Security Products: Symantec Endpoint production, MacAfee endpoint EPO, TrendMicro, Kaspersky, PGP EncryptionDesktop Data Loss Prevention (Forcepoint DLP, Mcafee DLP, TrendMicro DLPCloud Platform: Amazon AWS, AZURE CloudApplications software: MS Office, Office365, MS- Visio, Notepad
Vulnerability Assessment Scan Utility Tools: OpenVAS GSM, MBSA, Wireshark, NMAP
Programing Skills: C, C, Shell scripting, VB script, HTML, Java Basic
Network security architecture
Network security
Network Security Management
Cybersecurity best practices
Accomplishments
- Certifications:
- ITIL-v3 |CCNP-Security ID: CSCO13714887| NSE4 | MCSA| PCNSE | CompTIA CySA+, Cisco ESA C395 Cluster (EMAIL Security) project Design & Implementation around 2000 users
- Cisco WSA S395 HA Active/Standby Project design and configuration /Implementation around 2000 users
- Broadcom Proxy web security HA Active/Active Project design and configuration /Implementation around 2000 users
- Gigamon HC2 (HA Cluster) Network security packet visibility / Packet Broker Inline tool for North/South and East/West Traffic, Project Design and configuration /Implementation about entire Data center traffic
- Cisco ISE (Identity Service Engine) Project Design and configuration /Implementation around more than 2000 users
- Cisco 4115 FTD Enterprise Data center Multi context Microcontainers FW project design/ configuration and Implementation
- Cisco ACI Data center (Spine/Leaf) project configuration & Implementation
- Imperva Secure Sphere WAF HA project configuration & Implementation.
Certification
Rathinam S
Additional Information
- Achievements & Awards: , Fast Learner Award for Security Products (Technical) - 2010 Best support Engineer Award from The Client -2012 Best Performer Award for Technical Support -2013
Timeline
Sr. Network Security Engineer
FTC
01.2020 - Current
Sr. Network Security Engineer
Arabian Construction Company
04.2017 - 12.2019
Sr. Network Consultant
Chronus Software Pvt Ltd
06.2013 - 04.2017
Sr Network Security Technical Executive
Digital Track Solutions Pvt Ltd
01.2011 - 05.2013
Master of Computer Applications - undefined
Bharathiyar University
01.2008 - 01.2011
System Administrator
KONGUNADU ARTS AND SCIENCE COLLEGE
10.2007 - 12.2010
Bachelor of Computer Science (B.Sc - CS
Annamalai University
01.2004 - 01.2007